How to minimise security risks when moving your IT systems to the CloudRebecca Dagostino
The primary way of accessing Cloud servers is via a public internet connection, meaning that in theory that service can be accessed by anyone with an internet connection, making the risk of attack much higher.
HAYNE is proud to be a Microsoft Gold Partner, an organisation which takes its security responsibilities seriously.
Microsoft fully understand that any breach of security on the Microsoft Azure platform would have dire consequences for the future success of their platform. For this reason, Microsoft spends $1 billion annually on developing security, much of which is for the Azure platform. Combined with Azure itself being on a 21-day development cycle new security features and enhancements are a frequent addition.
Here are just a few of Azure’s basic security features:
- Data encryption
- Threat Intelligence (intrusion detection/behaviour analysis)
- DDoS protection
- Auditing (logon/account activity)
- Industry compliant (ISO / PCI DSS etc.)
Security is of paramount importance
While Microsoft puts a lot of effort into securing the Azure platform, the security of the individual servers is down to the customer, in this case HAYNE. Like Microsoft we take security very seriously, failure to do so would cause irrevocable damage to HAYNE’s reputation and business.
In addition to Microsoft’s own standards and security features, HAYNE incorporate additional measures to protect customer’s servers:
- Firewalls on every server
- Scheduled patching
- Rule of least privilege
- Multi Factor Authentication (where possible)
- Comprehensive monitoring
- Adoption of the ISO 27001 framework (Policies and processes)
- Sophos Advanced Server protection: Intercept X
As part of HAYNE’s commitment to security we have partnered with Sophos. It is our belief through extensive experience of managing servers that Sophos endpoint security products are in a league of their own when it comes to protecting servers and workstations from threats.
As standard we deploy Sophos Advanced Server security software to all servers; not only does this protect against common threats and vulnerabilities but also allows servers to be locked down to prevent ANY changes from taking place, even by a user with administrator’s privileges. Taking this a step further with the inclusion of InterceptX customer servers are also protected against crypto-jacking (Ransomware) which is a particular concern when customers are working in remote desktop environments.
Many cloud providers only have knowledge of the infrastructure or platform rather than the entire solution stack, making support seem patchy and disconnected often relying on multiple vendors.
HAYNE is unique as it is solution-focused so can support and maintain the entire solution rather than just focusing on specific areas.